Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Decade-old Windows kernel bug lets hackers bypass security protections

08 Sep 2017   #1
Brink

64-bit Windows 10 Pro
 
 
Decade-old Windows kernel bug lets hackers bypass security protections

Quote:
Researchers say that a bug in the Windows kernel could allow hackers to perform malicious actions by tricking security products blindly relying on a Windows API.

The bug affects a low-level interface, known as PsSetLoadImageNotifyRoutine, that notifies when a module has been loaded into the Windows kernel. The bug can allow an attacker to forge the name of a loaded module, a method that can mislead third-party security products, and allow malicious actions without any warning.

Omri Misgav, a security researcher at enSilo, who also wrote a blog post on the bug, said that the bug appears to be a "programming error" in the kernel.
All versions of Windows are affected.

PsSetLoadImageNotifyRoutine was originally introduced in Windows 2000 to inform drivers, such as those powering security products, when a module is loaded into a process and the module's address in memory, allowing security products to track modules...


Read more: Decade-old Windows kernel bug lets hackers bypass security protections | ZDNet


My System SpecsSystem Spec
.
10 Sep 2017   #2
TechnoMage2016

Windows 7 Ultimate, SP1, x86
 
 

So Shawn, how can we fix this? I make several tweaks to the registry, including one that loads the Kernel into ram on boot up, but so far I can't remember ever doing an edit to the Kernel itself. Is that even possible?

My System SpecsSystem Spec
10 Sep 2017   #3
Brink

64-bit Windows 10 Pro
 
 

Got me. It appears that it may only be something Microsoft could do.
My System SpecsSystem Spec
.

Reply

 Decade-old Windows kernel bug lets hackers bypass security protections




Thread Tools




Similar help and support threads
Thread Forum
Top Apps Largely Forgo Windows Security Protections
More... Top Apps Largely Forgo Windows Security Protections — Krebs on Security
News


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 01:25.
Twitter Facebook Google+